Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/yJ4a80zv3ysyg-BUK1Mx8ZRqqWU.roa
File: yJ4a80zv3ysyg-BUK1Mx8ZRqqWU.roa (raw, json)
Hash identifier: 9J50oVV7y8/UrG7aUL9necf6VJY+/Co3XdtXMaDdsKU=
Subject key identifier: C8:9E:1A:F3:4C:EF:DF:2B:32:83:E0:54:2B:53:31:F1:94:6A:A9:65
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A8CFF2B393855017BFBF5EBAACD3BD4
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/yJ4a80zv3ysyg-BUK1Mx8ZRqqWU.roa
Signing time: Wed 20 Jul 2022 07:40:24 +0000
ROA not before: Wed 20 Jul 2022 07:40:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202856
IP address blocks: 80.120.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:8c:ff:2b:39:38:55:01:7b:fb:f5:eb:aa:cd:3b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:40:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c89e1af34cefdf2b3283e0542b5331f1946aa965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9f:82:16:4a:10:92:a4:fd:95:b9:f0:e2:79:
9f:f0:f8:99:bf:46:ff:01:92:04:97:3f:33:6e:cc:
01:66:6c:00:a1:6b:ef:36:60:10:68:d6:7f:59:81:
f4:03:1d:5f:95:55:d3:91:0f:44:83:21:06:fb:4f:
78:19:a5:78:da:fc:f9:db:5c:6c:52:83:33:ea:2a:
e6:ba:53:73:52:87:31:87:4e:fd:e6:1e:05:21:90:
6f:f9:f0:4a:94:00:cb:29:62:64:e8:4f:46:f4:27:
d7:10:75:9f:63:95:4f:2e:87:54:aa:84:5d:4a:ef:
45:49:d7:72:98:da:68:de:03:36:23:3e:2d:49:4c:
fe:40:2d:df:b5:fe:f6:47:dd:31:d0:b8:fe:3b:4f:
f6:f6:7d:3f:d6:72:a0:76:50:af:d4:fd:c2:23:08:
c3:7c:e3:ac:ff:ee:66:f5:a0:2f:0c:c1:f2:89:fd:
4f:d0:d4:59:f2:87:c6:85:4e:43:71:11:e8:7a:f0:
da:d0:8e:d0:68:95:42:19:97:5d:1b:68:75:72:8d:
ab:21:dc:41:59:1a:1c:4c:51:b9:db:23:0d:6b:4b:
55:54:65:cc:f1:5b:38:e8:ac:2e:27:28:06:d3:ee:
fa:5c:04:24:65:28:1d:31:1b:fc:cb:b8:0e:5e:ab:
13:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9E:1A:F3:4C:EF:DF:2B:32:83:E0:54:2B:53:31:F1:94:6A:A9:65
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/yJ4a80zv3ysyg-BUK1Mx8ZRqqWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.120.145.0/24
Signature Algorithm: sha256WithRSAEncryption
44:7d:2a:50:e3:6d:d5:59:c2:50:b3:40:8c:ad:f9:b7:52:30:
b0:8d:07:ba:aa:ed:14:e1:d1:fa:80:5f:f9:7e:dc:5b:d3:42:
29:12:bc:9d:4a:f4:44:10:d1:d1:17:7a:3e:89:82:c6:8e:5c:
41:e5:67:9c:95:e1:85:75:c0:c8:db:52:d2:f0:79:92:4f:45:
8c:38:72:5f:32:00:9c:3b:09:3f:32:83:34:13:31:a9:49:1b:
03:fb:ee:16:bd:cd:92:b3:7e:4a:21:77:d5:51:81:82:55:ab:
4b:f2:f0:71:dd:2f:41:fc:27:5c:20:81:85:55:d8:40:23:84:
b5:c8:92:35:2e:a1:fe:fb:c6:b0:ce:e3:95:8c:a3:2a:18:7e:
0a:99:35:12:5d:59:29:52:82:a2:62:80:13:92:d7:93:5b:aa:
34:ad:25:d2:b0:bc:fe:ae:5f:9e:59:5b:cc:48:a5:47:68:ed:
e9:5b:d4:fd:13:da:a4:f1:e0:1c:33:0f:5a:7e:77:ea:df:86:
1d:a0:66:8a:2b:95:65:0c:7f:5c:20:27:d1:5a:53:ea:cf:e1:
7b:e6:f6:0f:2c:40:dc:dd:43:34:d4:5d:56:fc:d3:ce:fb:8d:
7e:2f:31:0a:2d:f0:40:c7:e7:3f:2b:3b:e5:86:50:bb:f9:9e:
aa:f5:c2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-fra.rpki-client.org